A mechanism to bypass file system access protections in the sandbox using the file system request constructor through an IPC message. This allows for read only access to the local file system. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2017-11/#CVE-2017-5456 Acknowledgements: Name: the Mozilla project Upstream: Julian Hector
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:1106 https://access.redhat.com/errata/RHSA-2017:1106